Lucene search
HistoryMay 30, 2015 - 2:59 p.m.
CVE-2015-0745
cisco
headend system
release
vulnerability
remote attackers
sensitive information
crafted http request
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
6.5 Medium
AI Score
Confidence
Low
0.002 Low
EPSS
Percentile
56.4%
Cisco Headend System Release allows remote attackers to read temporary script files or archive files, and consequently obtain sensitive information, via a crafted header in an HTTP request, aka Bug ID CSCus44909.
Affected configurations
Node
ciscoheadend_digital_broadband_delivery_systemMatch-
ORciscoheadend_system_releaseMatch2.5
ORciscoheadend_system_releaseMatch2.7
ORciscoheadend_system_releaseMatch3.2
ORciscoheadend_system_releaseMatch3.5
ORciscoheadend_system_releaseMatch3.7
ORciscoheadend_system_releaseMatchi4.3
Related
prion
prion
Design/Logic Flaw
2015-05-30 14:59:00
nvd
nvd
CVE-2015-0745
2015-05-30 14:59:03
cisco
cisco
Cisco Headend System Release Archive File Download Vulnerability
2015-05-29 20:09:43
cvelist
cvelist
CVE-2015-0745
2015-05-30 14:00:00
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
6.5 Medium
AI Score
Confidence
Low
0.002 Low
EPSS
Percentile
56.4%
Related for CVE-2015-0745